A validated session is required for additional authentication during the performance of the most risk-related operations in the personal account.
You may use validated sessions if you have submitted an online transfer application.
Sessions are validated using a one-time password. The password will be texted to the mobile number listed in the online transfer application. The password will be valid for 30 minutes after being sent. The password will become invalid after three unsuccessful attempts.
Do not leave a validated session open. After you are finished, log out of the personal account.
Receiving registry authorization codes for gTLDs and ccTLDs
A validated session:
- allows a registrant to receive an authorization code online — promptly and at any time;
- protects from unauthorized registrar change (you have submitted an online transfer application, authorization codes will not be sent via email).